Full Disclosure mailing list archives
Re: Shortcut...... may cause 100% cpu use!!!
From: "Ricky Blaikie" <ricky.blaikie () servercity co uk>
Date: Thu, 30 Oct 2003 15:54:55 -0000
proper 1337 :-) -- Ricky Blaikie - Server City Ltd http://www.servercity.co.uk - sales () servercity co uk T:0871-260100 F: 0871-2601001 ----- Original Message ----- From: "Maxime Ducharme" <maxime () pandore-design com> To: <full-disclosure () lists netsys com> Sent: Thursday, October 30, 2003 3:43 PM Subject: Re: [Full-disclosure] Shortcut...... may cause 100% cpu use!!!
From: "Bipin Gautam" <door_hUNT3R () blackcodemail com> To: <full-disclosure () lists netsys com> Sent: Thursday, October 30, 2003 9:02 AM Subject: [Full-disclosure] Shortcut...... may cause 100% cpu use!!!--[Effected]-- The exploit has been tested in WINDOWS xpwow a new exploit !--[Description]-- Running a specially crafted "shortcut" that points to itself! IF
executed
through 'Windows Explorer' or IE may cauze 100% cpu use... THAT CAN LEAD TODoS in the victim. ohhh wait, this a DoS too !--[Simple! proof of concept]-- http://www.geocities.com/visitbipin/shortcut.zip [Note: You *may* have to RUN the 'shortcut' few* time's to have aeffective 100% CPU use...]EXTRACT this file and copy it to c:\ [root] and double click IT... oropen it through IE after copying it in c:\PS: Anyone willing to craft* it for IIS (O;I found how, send the file to the sysadmin and tell his this is a patch !--[credit]-- Bipin Gautam (hUNT3R)congrats to our security specialist bipin_____________________________________________________________ Secure mail ---> http://www.blackcode.com _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: Shortcut...... may cause 100% cpu use!!!, (continued)
- Re: Shortcut...... may cause 100% cpu use!!! Ag. System Administrator (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Ricardo Moura (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Ag. System Administrator (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! morning_wood (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Ricky Blaikie (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! John Sage (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Ricardo Moura (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! vb (Oct 30)
- RE: Shortcut...... may cause 100% cpu use!!! Warren Rees (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Ag. System Administrator (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Ricky Blaikie (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Tim (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Maxime Ducharme (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Ricky Blaikie (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! madsaxon (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Ricky Blaikie (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Gregory A. Gilliss (Oct 30)
- Re: Shortcut...... may cause 100% cpu use!!! Frank Knobbe (Oct 30)